16 matches found
K17199: Linux kernel vulnerability CVE-2014-3690
Security Advisory Description arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of...
CVE-2021-44776
A broken access control vulnerability in the SubNethandlerfunc function of spxrestservice allows an attacker to arbitrarily change the security access rights to KVM and Virtual Media functionalities. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0...
Intel AMT Remote Authentication Bypass Vulnerability
Intel AMT is known as INTEL Active Management Technology, a preset feature that uses Web-based control pages to allow administrators to manage the system remotely via remote ports 16992 and 16993. A remote authentication bypass vulnerability exists in Intel AMT. An unauthorized user can bypass th...
CVE-2017-5689
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology AMT and Intel Standard Manageability ISM. An unprivileged local attacker could provision manageability features gaining unprivileged network or local system...
Null pointer dereference
The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...
CVE-2015-4692
The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...
CVE-2015-4692
The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...
CVE-2015-4692
CVE-2015-4692 affects the Linux kernel’s KVM code: in arch/x86/kvm/lapic.h, the kvm_apic_has_events() function may dereference a NULL pointer via an ioctl to /dev/kvm, enabling a local attacker to cause a denial of service (system crash). The description indicates the issue exists through kernel ...
CVE-2015-4692
The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...
CVE-2015-4692
The kvmapichasevents function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by leveraging /dev/kvm access for an ioctl call...
Ubuntu 14.10 : linux vulnerabilities (USN-2421-1)
A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service kill arbitrary processes, or system disruption by leveraging /dev/kvm access...
Ubuntu 12.04 LTS : linux vulnerabilities (USN-2417-1)
Nadav Amit reported that the KVM Kernel Virtual Machine mishandles noncanonical addresses when emulating instructions that change the rip Instruction Pointer. A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service system crash of the guest. CVE-2014-3647 A flaw...
CVE-2014-3690
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of service system disruption by...
Design/Logic Flaw
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of service system disruption by...
CVE-2014-3690
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of service system disruption by...
CVE-2014-3690
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of service system disruption by...